0.002 Low
EPSS
Percentile
59.9%
Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of many JSON object fields (with keys that have the same hash code).
github.com/advisories/GHSA-q8xj-8xg3-w432
github.com/spray/spray-jso
github.com/spray/spray-json/issues/277
nvd.nist.gov/vuln/detail/CVE-2018-18854